ailure - value: The AuthnRequest MUST validate against XSD and MUST have a valid signature stderr: func=xmlSecOpenSSLAppKeyLoadBIO:file=app.c:line=268:obj=unknown:subj=PEM_read_bio_PrivateKey and PEM_read_bio_PUBKEY:error=4:crypto library function failed:openssl error: 151584876: PEM routines: get_name no start line

[DrFreud94]

Salve. spid-saml-check mi restituisce l'errore in oggetto. La mia request `e la seguente:

<saml2p:AuthnRequest AssertionConsumerServiceIndex="0" AttributeConsumingServiceIndex="0" Destination="https://localhost:8443/samlsso" ForceAuthn="true" ID="_504a754e-97fc-40eb-99a2-4bc2be63e946" IssueInstant="2024-10-22T17:17:13.955Z" Version="2.0" xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol">
<saml2:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" NameQualifier="https://prova/pub-ag-full/spid" xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion">
https://prova/pub-ag-full/spid
</saml2:Issuer>
<ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
ds:SignedInfo
<ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
<ds:SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha512"/>
<ds:Reference URI="#_504a754e-97fc-40eb-99a2-4bc2be63e946">
ds:Transforms
<ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/>
<ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
</ds:Transforms>
<ds:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha512"/>
ds:DigestValue
gc7Pw8iTDeMAB3BPzttvLozHPhvYQCBPBM4HbION6sMirg5hHRzFtXfGC88Q8RpXSmeLEWFU5O7ZyE7VA/tSaw==
</ds:DigestValue>
</ds:Reference>
</ds:SignedInfo>
ds:SignatureValue
FXEbkvi89LfaI4Mq5E96W7hl6pqfCZlNseejLM8KDUG0nYg+bXslJxgEXl7i6tkwNJteJj3ho7kf6ROY2bswYyh31ZpCYbYXDBfpdY8JoHOxtrPMjA7pcJWnjVbzDwVPHg3bqUkk+uE2Ypr6lbJNJ8zAsJbVyI2u4q4Rnf2Urx7d1CotzqIIfFVMj+bZ8DQDu99a6ttaU9ht17Ycgxg2Bv8SMsBcJDehmIyTG1tKqVqqu0H8BKv1gIDQXp7N8ycbPCKsjEjUkuNpTQbJJsAHHFmzibL/J3Md51euQnk7U238VVPvQri78GELrtIjTFRxem6tASBuQS3QYpYDuzuHUQ==
</ds:SignatureValue>
ds:KeyInfo
ds:KeyValue
ds:RSAKeyValue
ds:Modulus
1km3M6tlyV2vR/WezhNiqGaVE8Jr3FyYUOlV3QGHzGF/bsBJiL1qLV/rlxrZv7nuZzUt9BwKfa2n
vtMl8sMkt7taC2Q9Le1bC9ADHByY1LY9xy4xSba/d0KjFSBoeknehTxjIMGC7+oAEvWzcO90+b3J
ycUJQdpcYmWBDRQzbcfEuHu30jTlUNMx3aWfTBQ5+T20K1RR8Ibwg6IwUnlvk+TzSjy8eLTz0ngE
jfDyTkMGn0JT8ENxqDC2xNpDuiqztoDg56Zzd/DBCqeKMXfNGTCOYrjPFyq1TEdWm3F/CBTHZROm
tsn3n4bqTnyhut1YNi5OuN7nAMV9uW67xwi6Pw==
</ds:Modulus>
ds:Exponent
AQAB
</ds:Exponent>
</ds:RSAKeyValue>
</ds:KeyValue>
ds:X509Data
ds:X509Certificate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</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
</ds:Signature>
<saml2p:NameIDPolicy Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient"/>
<saml2p:RequestedAuthnContext Comparison="minimum">
<saml:AuthnContextClassRef xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">
https://www.spid.gov.it/SpidL2
</saml:AuthnContextClassRef>
</saml2p:RequestedAuthnContext>
</saml2p:AuthnRequest>

Ho una firma self-signed. come posso risolvere?